INSTRUCTIONS
Respond to the following in a minimum of 250 words:
Organizations need to know the value of their data to find the best way to protect it. The data must be categorized according to the organization’s level of concern for confidentiality, integrity, and availability. The potential impact on assets and operations should be known in case data, systems, and/or networks are compromised (through unauthorized access, use, disclosure, disruption, modification, or destruction).
- Review course materials and Research Materials below.
- Describe three data sets (PII, ePHI, trade secrets, etc.) an organization might have.
- Describe why data classification and categorization are important.
- Use the Standards for Security Categorization of Federal Information and Information Systems categorization technique to categorize each data set.